Announcement

Collapse
No announcement yet.

How can I confirm that traffic is going over a l2l VPN tunnel?

Collapse
X
  • Filter
  • Time
  • Show
Clear All
new posts

  • How can I confirm that traffic is going over a l2l VPN tunnel?

    How can I confirm that traffic is going over a l2l VPN tunnel on a Cisco ASA 5510?

    I'm trying to troubleshoot a lan-to-lan VPN, and I can see the expected packets with a capture command but the remote site indicates they are not seeing any traffic at all.

    How can I confrm that the packets are being sent over the VPN tunnel, and not out on the general Public interface?

  • #2
    Re: How can I confirm that traffic is going over a l2l VPN tunnel?

    Show commands may work.

    http://www.cisco.com/en/US/docs/secu...html#wp1447413
    cheers
    Andy

    Please read this before you post:


    Quis custodiet ipsos custodes?

    Comment


    • #3
      Re: How can I confirm that traffic is going over a l2l VPN tunnel?

      For anyone with the same question:

      show crypto ipsec sa

      Find the appropriate tunnel entry
      Look at the packet count:

      #pkts encaps: 9, #pkts encrypt: 9, #pkts digest: 9
      #pkts decaps: 6, #pkts decrypt: 6, #pkts verify: 6

      Comment

      Working...
      X